ModSecurity in Cloud Hosting
ModSecurity comes by default with all cloud hosting solutions that we offer and it'll be switched on automatically for any domain or subdomain you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could switch on and disable it with only a click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites will contain comprehensive information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are regularly updated and incorporate both commercial ones which we get from a third-party security firm and custom ones that our system administrators include in the event that they detect a new type of attacks. In this way, the websites you host here will be way more secure with no action required on your end.
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our semi-dedicated server packages and if you decide to host your sites with our company, there will not be anything special you will have to do since the firewall is switched on by default for all domains and subdomains which you include using your hosting Control Panel. If needed, you can disable ModSecurity for a particular website or enable the so-called detection mode in which case the firewall shall still work and record data, but will not do anything to prevent potential attacks on your websites. Detailed logs will be accessible in your Control Panel and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, etcetera. We use 2 kinds of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones that our admins often include to respond to newly discovered risks in a timely manner.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting CP, so your web programs will be secured from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you'll be able to deactivate it with a click of your mouse through the corresponding section of Hepsia. You could also set it to work in detection mode, so it will maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs are available in the exact same section and offer information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For maximum security, we employ not only commercial rules from a company operating in the field of web security, but also custom ones which our administrators add manually in order to react to new threats that are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers
ModSecurity is included with all dedicated servers that are set up with our Hepsia CP and you won't have to do anything specific on your end to employ it since it is enabled by default each time you include a new domain or subdomain on your hosting server. If it disrupts some of your programs, you'll be able to stop it via the respective section of Hepsia, or you could leave it working in passive mode, so it will detect attacks and will still maintain a log for them, but won't prevent them. You'll be able to analyze the logs later to determine what you can do to improve the safety of your Internet sites as you'll find information such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, etc. The rules which we employ are commercial, therefore they are regularly updated by a security company, but to be on the safe side, our administrators also include custom rules occasionally as to respond to any new threats they have identified.